Thanks to Claor @Chronicoder and VulnHub folks for the opportunity of writing another walkthrough for a very challenging vulnerable machine. First thing first, I fired-up nmap. Usually I do that, run nmap and after that nikto. 😀 As it can be observed, only two ports are of interest: 80 (for HTTP) and 3306, on which runs mysql….

That’s all folks! Thanks for reading this! 🙂 And now, if you want to know the story of TommyBoy machine, let’s start from the beginnig. This challenge has a story, and quite an enjoyable one IMHO and this will make things more…